praetorian-inc

praetorian-inc / brutus

Public

Fast, zero-dependency credential testing tool in Go. Brute force SSH, MySQL, PostgreSQL, Redis, MongoDB, SMB, and 20+ protocols. Hydra alternative with native fingerprintx/naabu pipeline integration.

brute-force credential-testing cybersecurity golang hacking-tools
121
12
100% credibility
Found Feb 17, 2026 at 25 stars 5x -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Go
AI Summary

Brutus is a tool for security testers to check if network services accept weak or default credentials across many protocols.

How It Works

1
🔍 Hear about Brutus

A friend mentions a simple tool that checks if your network servers have weak passwords, like defaults from the factory.

2
📥 Grab the program

Download one easy file that works on any computer—no setup needed.

3
⚙️ Point it at your network

Tell it which computers to check, like your office servers or home devices.

4
🚀 Watch it test everything

It quickly tries common weak logins on all kinds of services, even using known bad keys automatically.

5
📊 See the weak spots

Get a clear list of any servers with easy-to-guess passwords that need fixing.

Secure your setup

Fix the problems and sleep better knowing your network is safer from outsiders.

Sign up to see the full architecture

4 more

Sign Up Free

Star Growth

See how this repo grew from 25 to 121 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is brutus?

Brutus is a zero-dependency Go binary for brute-forcing credentials across 20+ protocols including SSH, MySQL, PostgreSQL, Redis, MongoDB, SMB, LDAP, and WinRM. It solves the pain of validating auth on diverse services during pentests by piping naabu port scans into fingerprintx identification, then testing defaults or lists in one command. Single brutus download github gets you cross-platform execution with JSON output for automation.

Why is it gaining traction?

Hydra alternatives like Ncrack falter on deps and pipelines, but Brutus runs fast github-style with no compilation hassles, embedded bad SSH keys (Vagrant, F5), and native fingerprintx/naabu flows. Rate limiting and connection pooling make it production-safe for spraying keys network-wide, outputting only hits.

Who should use this?

Red teamers testing password dumps or keys post-phish, pentesters auditing defaults on internal ranges, and security automation builders importing the Go library. Ideal for ops validating SSH/MySQL/SMB reuse without Hydra's friction.

Verdict

Promising Hydra successor with excellent docs, tests, and pipeline speed, but 13 stars and 1.0% credibility score mean it's pre-mainstream—prototype carefully. Grab for protocol spraying if you need fast github actions integration.

(187 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.